This Privacy Policy describes how the Obelisk website and software manages the personal data of users who consult and use it. This notice is provided pursuant to the EU Regulation 2016/679 (GDPR).
Data Minimization Principle: This site is configured to minimize the collection of personal data. We do not perform user profiling or advertising tracking.
1. Data Controller
The Data Controller is:
- Company Name: Obsk
- Contact Email: info@obsk.io
2. Types of Data Collected
We collect personal data exclusively on a voluntary basis and only when strictly necessary to provide the requested services. Specifically:
- Data provided voluntarily by the user: Email address, name, surname, and phone number are collected only and exclusively if the user fills out contact forms or sends emails for quote requests, license purchases, or technical support tickets.
- Navigation Data (Technical): The computer systems and software procedures used to operate this website acquire, during their normal operation, some technical data (e.g., IP addresses, error logs) whose transmission is implicit in the use of Internet communication protocols. These data are used solely to obtain anonymous statistical information on the use of the site and to check its correct functioning.
We do not collect sensitive data, data relating to health, political or religious orientation, nor do we perform automated profiling of users for marketing purposes.
3. Purpose of Processing
Personal data provided will be processed for the following and exclusive purposes:
- Sales Processes: Administrative management, billing, and activation of software licenses requested by the user.
- Technical Support: Provision of support services, response to technical queries, and resolution of reported issues.
- Legal Obligations: Fulfillment of obligations established by law, regulations, or EU legislation (e.g., tax and accounting obligations).
4. Data Recipients and Prohibition of Sharing
The Data Controller guarantees that the user's personal data will never be sold, ceded, exchanged, or lent to third parties for commercial or marketing purposes, or for any other purpose not directly related to the provision of the requested service.
Data may be made accessible exclusively to:
- Internal personnel authorized by the Controller (administration, sales, system administrators) duly trained in confidentiality.
- External subjects providing outsourcing services on behalf of the Controller (e.g., accountants for billing, hosting providers for site maintenance) in their capacity as Data Processors, strictly for the technical/tax purposes indicated above.
5. Processing Methods and Security
Processing is carried out using IT and/or telematic tools, with organizational and logical methods strictly related to the indicated purposes. We adopt specific security measures to prevent data loss, illicit or incorrect use, and unauthorized access.
6. Rights of the Data Subject
At any time, the user may exercise, pursuant to Arts. 15-22 of the GDPR, the right to:
- Request confirmation of the existence or non-existence of their personal data.
- Obtain indications regarding the purposes of processing, categories of personal data, and recipients or categories of recipients to whom the personal data have been or will be communicated.
- Request rectification, deletion (Right to be Forgotten), or limitation of processing.
- Object to processing at any time.
To exercise these rights, simply send a request via email to the Controller's address indicated in point 1.